ABSTRACT OF THE DISCLOSURE 

A system and method providing Internet protocol security without secure domain name 
resolution are disclosed. A processor that periodically needs to resolve domain names into 
network addresses has a local DNS server that includes a secure IPSEC cache, a resolver 
5 function, a security policy database, and an IPSEC layer. The cache is readable only by the 
IPSEC layer. Resolved domain names are cached with process and transaction identifiers that 
uniquely associate the resolved names with an application process and time. When resolution 
is needed, the cache is used to ensure that IP addresses are resolved from names that came 
from the application. As a result, IPSEC connections may be established without use of 
1 0 DNSSEC to provide secure domain name resolution. 
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